CVE-2024-32547 - CERT CVE
ID CVE-2024-32547
Sažetak Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Max Bond Code Insert Manager (Q2W3 Inc Manager) allows Reflected XSS.This issue affects Code Insert Manager (Q2W3 Inc Manager): from n/a through 2.5.3.
Reference
CVSS
Base: 5.8
Impact: 3.7
Exploitability:1.6
Pristup
VektorSloženostAutentikacija
NETWORK HIGH NONE
Impact
PovjerljivostCjelovitostDostupnost
LOW LOW LOW
CVSS vektor CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L
Zadnje važnije ažuriranje 17-04-2024 - 12:48
Objavljeno 17-04-2024 - 08:15